$ rpki-client -vvf rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa File: FD1CA67AAD5511EDBA936539C4F9AE02.roa (raw, json) Hash identifier: X7HKLCMYv+5yO0PXDMAF77ngtZuIkMviUoMFPRXsQKk= Subject key identifier: A5:7C:9F:78:1A:69:2A:74:06:BA:4C:6D:83:CF:1B:E5:E2:14:31:88 Certificate issuer: /CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Certificate serial: 0CB7 Authority key identifier: 8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa Signing time: Thu 30 Oct 2025 18:37:32 +0000 ROA not before: Thu 30 Oct 2025 18:37:32 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138336 IP address blocks: 103.130.112.0/23 maxlen: 23 103.130.112.0/24 maxlen: 24 103.130.113.0/24 maxlen: 24 2403:b840::/32 maxlen: 32 2403:b840:1::/48 maxlen: 48 2403:b840:2::/48 maxlen: 48 2403:b840:3::/48 maxlen: 48 2403:b840:4::/48 maxlen: 48 2403:b840:5::/48 maxlen: 48 2403:b840:6::/48 maxlen: 48 2403:b840:7::/48 maxlen: 48 2403:b840:8::/48 maxlen: 48 2403:b840:9::/48 maxlen: 48 2403:b840:a::/48 maxlen: 48 2403:b840:b::/48 maxlen: 48 2403:b840:c::/48 maxlen: 48 2403:b840:d::/48 maxlen: 48 2403:b840:e::/48 maxlen: 48 2403:b840:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C21E, serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Validity Not Before: Oct 30 18:37:32 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903b06c-e754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5a:6a:2d:59:e2:a6:e1:7d:8c:a4:eb:47:4e: 36:4e:73:a0:c4:ed:51:6e:21:53:11:8e:ef:6a:5b: 66:dd:e2:8e:13:a2:39:c2:e7:38:43:b6:a3:83:86: 00:09:d3:39:c6:2e:58:b4:24:95:8a:63:a9:5f:d2: 97:f8:dd:9b:12:26:52:28:6e:21:8e:82:d0:4f:b5: 3e:03:60:de:35:94:e4:0d:93:f9:11:73:e9:b1:7b: 88:8e:de:dd:53:df:a6:64:c7:d2:16:13:41:1f:21: e9:45:fd:8a:b0:07:9e:ca:96:f3:f7:d6:66:2e:10: 6a:a3:5a:3f:65:f4:6c:38:eb:a8:d7:00:e3:21:0c: f7:59:14:1e:be:ff:2a:d8:8c:c0:eb:4a:03:91:1e: 9a:ae:85:cb:d7:e0:d6:77:6b:53:01:3e:31:a1:2d: d1:87:30:31:02:3f:f5:be:35:50:cf:a4:07:ef:6e: 28:79:fc:80:e6:be:05:9e:36:36:01:34:42:35:df: 27:bd:e7:14:58:3b:13:ce:9b:c5:83:28:c5:68:b3: 28:7f:72:2e:ff:bf:0e:36:e4:a3:b5:ca:f6:fb:69: a5:2b:8f:8d:b1:fb:8b:6a:49:81:c2:53:cf:80:cd: 74:2e:b8:5d:1f:b5:fc:70:97:66:1a:74:f0:5a:6f: d5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7C:9F:78:1A:69:2A:74:06:BA:4C:6D:83:CF:1B:E5:E2:14:31:88 X509v3 Authority Key Identifier: keyid:8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.112.0/23 IPv6: 2403:b840::/32 Signature Algorithm: sha256WithRSAEncryption 6f:41:a1:cf:73:80:3f:f6:dc:b2:4c:f1:0b:4a:e9:f0:bb:40: e6:d7:f1:0b:65:29:27:34:0c:d2:86:d7:36:c6:1a:16:27:91: 42:e2:37:a9:5e:e1:de:1c:cc:6e:4d:f2:27:05:d3:a8:2f:3e: dd:23:2a:2d:44:ac:21:4b:42:15:c3:c4:d8:6e:9f:a9:ed:1e: 4e:f2:12:d4:55:92:78:d2:7f:fd:f8:68:de:f4:71:dc:af:1d: d3:f0:47:3e:46:7d:e8:6f:d1:99:36:09:b8:3e:84:d8:cb:c0: 99:5c:b7:0d:6f:0e:ad:31:77:8e:91:30:f7:67:5e:f0:83:5b: c1:32:5c:6a:b6:d8:e8:c4:3f:08:4f:10:97:af:af:8a:99:63: c3:dc:6c:58:67:f4:3d:a0:30:d0:38:b6:55:c2:23:c0:21:eb: 86:22:c1:14:7b:bc:ad:b2:2c:0a:c4:d6:44:e8:7c:61:dd:cf: 0f:a9:33:13:f7:95:60:7d:ed:c8:09:67:2d:ef:19:d8:9f:4f: 5a:f8:bf:04:97:b2:3d:f9:21:8f:80:00:4a:62:ac:f3:09:45: bc:a9:5f:8b:4c:b3:c9:e4:40:55:dd:ca:6f:65:a3:e4:a9:64: cc:12:6a:5b:b3:19:de:4d:4e:c7:7f:15:7b:ed:4d:01:5f:7c: e1:7d:fe:ca -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyMUUxMTAvBgNVBAUTKDhCRTM4NzQ1NDZFOTBCQTgzMjM3MTc5RUU4OTMyMDEz QjJEOUY4NDAwHhcNMjUxMDMwMTgzNzMyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzYjA2Yy1lNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VpqLVnipuF9jKTrR042TnOgxO1RbiFTEY7valtm3eKOE6I5wuc4Q7ajg4YA CdM5xi5YtCSVimOpX9KX+N2bEiZSKG4hjoLQT7U+A2DeNZTkDZP5EXPpsXuIjt7d U9+mZMfSFhNBHyHpRf2KsAeeypbz99ZmLhBqo1o/ZfRsOOuo1wDjIQz3WRQevv8q 2IzA60oDkR6aroXL1+DWd2tTAT4xoS3RhzAxAj/1vjVQz6QH724oefyA5r4FnjY2 ATRCNd8nvecUWDsTzpvFgyjFaLMof3Iu/78ONuSjtcr2+2mlK4+NsfuLakmBwlPP gM10LrhdH7X8cJdmGnTwWm/VzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKV8n3ga aSp0BrpMbYPPG+XiFDGIMB8GA1UdIwQYMBaAFIvjh0VG6QuoMjcXnuiTIBOy2fhA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzIxRS82MEMxODE1NDBC ODkxMUVBOEU1QUI3NUZDNEY5QUUwMi9pLU9IUlVicEM2Z3lOeGVlNkpNZ0U3TFot RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktT0hSVWJwQzZneU54ZWU2Sk1nRTdMWi1FQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyMUUvNjBDMTgxNTQwQjg5MTFFQThFNUFCNzVGQzRGOUFFMDIvRkQxQ0E2N0FB RDU1MTFFREJBOTM2NTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFngnAwDQQCAAIwBwMFACQDuEAwDQYJKoZIhvcNAQELBQAD ggEBAG9Boc9zgD/23LJM8QtK6fC7QObX8QtlKSc0DNKG1zbGGhYnkULiN6le4d4c zG5N8icF06gvPt0jKi1ErCFLQhXDxNhun6ntHk7yEtRVknjSf/34aN70cdyvHdPw Rz5Gfehv0Zk2Cbg+hNjLwJlctw1vDq0xd46RMPdnXvCDW8EyXGq22OjEPwhPEJev r4qZY8PcbFhn9D2gMNA4tlXCI8Ah64YiwRR7vK2yLArE1kTofGHdzw+pMxP3lWB9 7cgJZy3vGdifT1r4vwSXsj35IY+AAEpirPMJRbypX4tMs8nkQFXdym9lo+SpZMwS aluzGd5NTsd/FXvtTQFffOF9/so= -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:37 2025 by rpki-client